VDB
CVE-2010-0424
CVE-2010-0424
PUBLISHED
CVSS 3.299999952316284 LOW
The edit_cmd function in crontab.c in (1) cronie before 1.4.4 and (2) Vixie cron (vixie-cron) allows local users to change the modification times of arbitrary files, and consequently cause a denial of service, via a symlink attack on a temporary file in the /tmp directory.
EPSS 0.10% · 27.3th percentile
Risk Scores
CVSS 2.0
3.299999952316284
EPSS Score
0.10%
27.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| paul_vixie | vixie_cron | |
| n/a | n/a | n/a |
| fedorahosted | cronie | 0 |
Exploit Intelligence
- https://bugzilla.redhat.com/show_bug.cgi?id=565809 (circl)
- 38700 (circl)
- http://git.fedorahosted.org/git/cronie.git?p=cronie.git%3Ba=commit%3Bh=9e4a8fa5f9171fb724981f53879c9b20264aeb61 (circl)
- FEDORA-2010-2751 (circl)
- 38741 (circl)
- 48104 (circl)
- 38391 (circl)
Timeline
- Feb 25, 2010 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 2, 2023 EPSS Score
- May 25, 2023 EPSS Score
References
- https://bugzilla.redhat.com/show_bug.cgi?id=565809 url
- 38700 third-party-advisory
- http://git.fedorahosted.org/git/cronie.git?p=cronie.git%3Ba=commit%3Bh=9e4a8fa5f9171fb724981f53879c9b20264aeb61 url
- FEDORA-2010-2751 vendor-advisory
- 38741 third-party-advisory
- 48104 third-party-advisory
- 38391 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2010-0424 advisory
- http://git.fedorahosted.org/git/cronie.git?p=cronie.git;a=commit;h=9e4a8fa5f9171fb724981f53879c9b20264aeb61 url